CVE-2024-43574: Microsoft Speech Application Programming Interface (SAPI) Remote Code Execution Vulnerability

CVE-2024-43572: Microsoft Management Console Remote Code Execution Vulnerability

CVE-2024-43593: Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

CVE-2024-43592: Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

CVE-2024-43583: Winlogon Elevation of Privilege Vulnerability

**How could an attacker exploit this vulnerability?**

An authenticated user could send a specially crafted SQL request to a Dynamics GP Web Service and perform remote code execution.

Headline

CVE-2022-23274: Microsoft Dynamics GP Remote Code Execution Vulnerability

Microsoft Security Response Center: Latest News